CVSS: 8.1EPSS: 1%CPEs: 6EXPL: 0CVE-2013-1981 – libX11: Multiple integer overflows leading to heap-based buffer-overflows
https://notcve.org/view.php?id=CVE-2013-1981
28 May 2013 — Multiple integer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XQueryFont, (2) _XF86BigfontQueryFont, (3) XListFontsWithInfo, (4) XGetMotionEvents, (5) XListHosts, (6) XGetModifierMapping, (7) XGetPointerMapping, (8) XGetKeyboardMapping, (9) XGetWindowProperty, (10) XGetImage, (11) LoadColornameDB, (12) XrmGetFileDatabase, (13) _XimParseStringFile, or (14) TransFileName functions. M... • http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106781.html • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 0CVE-2013-1997 – libX11: Multiple Array Index error leading to heap-based OOB write
https://notcve.org/view.php?id=CVE-2013-1997
28 May 2013 — Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XAllocColorCells, (2) _XkbReadGetDeviceInfoReply, (3) _XkbReadGeomShapes, (4) _XkbReadGetGeometryReply, (5) _XkbReadKeySyms, (6) _XkbReadKeyActions, (7) _XkbReadKeyBehaviors, (8) _XkbReadModifierMap, (9) _XkbReadExplicitComponents, (10) _XkbReadVirtualModMap, (11) _XkbReadGetNamesReply, (12) _XkbReadG... • http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106781.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 8.1EPSS: 0%CPEs: 10EXPL: 0CVE-2013-2002 – libXt: Array Index error leading to heap-based OOB write
https://notcve.org/view.php?id=CVE-2013-2002
23 May 2013 — Buffer overflow in X.org libXt 1.1.3 and earlier allows X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the _XtResourceConfigurationEH function. Desbordamiento de búfer en X.org libXt v1.1.3 y anteriores permite a los servidores X causar una denegación de servicio (caída de la aplicacion) y posiblemente ejecutar código de su elección a través de unos valores de longitud o de índice de la función _XtResourceConfigurationEH debidamente m... • http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106785.html • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •
CVSS: 8.1EPSS: 0%CPEs: 8EXPL: 0CVE-2013-2003 – libXcursor: Integer overflow leading to heap-based buffer overflow
https://notcve.org/view.php?id=CVE-2013-2003
23 May 2013 — Integer overflow in X.org libXcursor 1.1.13 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the _XcursorFileHeaderCreate function. Un desbordamiento de entero en X.org libxcursor v1.1.13 y anteriores permite a los servidores X activar la asignación de memoria insuficiente y provocar un desbordamiento de búfer a través de vectores relacionados con la función _XcursorFileHeaderCreate. The X11 libraries provide library routines that are use... • http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106791.html • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 0%CPEs: 10EXPL: 0CVE-2013-2005 – libXt: Memory corruption due to unchecked use of unchecked function pointers
https://notcve.org/view.php?id=CVE-2013-2005
23 May 2013 — X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the (1) ReqCleanup, (2) HandleSelectionEvents, (3) ReqTimedOut, (4) HandleNormal, and (5) HandleSelectionReplies functions. X.org LibXt v1.1.3 y versiones anteriores no comprueba el valor devuelto por la función XGetWindowProperty, lo que permite a los servidores X el activar el uso de un puntero no in... • http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106785.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-456: Missing Initialization of a Variable •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2013-2062 – libXp: Integer overflow leading to heap-based buffer overflow
https://notcve.org/view.php?id=CVE-2013-2062
23 May 2013 — Multiple integer overflows in X.org libXp 1.0.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XpGetAttributes, (2) XpGetOneAttribute, (3) XpGetPrinterList, and (4) XpQueryScreens functions. Múltiples desbordamientos de enteros en X.org libXp v1.0.1 y anteriores permiten que los servidores X provoquen una asignación de memoria insuficiente y un desbordamiento de búfer a través de vectores relacionados con las funciones (1) XpGetA... • http://lists.opensuse.org/opensuse-updates/2013-06/msg00170.html • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •
CVSS: 8.1EPSS: 1%CPEs: 7EXPL: 0CVE-2013-2063 – libXtst: Integer overflow leading to heap-based buffer overlow
https://notcve.org/view.php?id=CVE-2013-2063
23 May 2013 — Integer overflow in X.org libXtst 1.2.1 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the XRecordGetContext function. Desbordamiento de entero en X.org libXtst v1.2.1 y anteriores permite a los servidores X provocar una asignación de memoria insuficiente y un desbordamiento de búfer a través de vectores relacionados con la función XRecordGetContext. Ilja van Sprundel of IOActive discovered several security issues in multiple components... • http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106886.html • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •
CVSS: 8.1EPSS: 1%CPEs: 24EXPL: 0CVE-2013-2064 – libxcb: Integer overflow leading to heap-based buffer overflow
https://notcve.org/view.php?id=CVE-2013-2064
23 May 2013 — Integer overflow in X.org libxcb 1.9 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the read_packet function. Desbordamiento de entero en X.org libxcb v1.9 y anteriores permite a los servidores X activar la asignación de memoria insuficiente y provocar un desbordamiento de búfer a través de vectores relacionados con la función read_packet. The X11 libraries provide library routines that are used within all X Window applications. Multipl... • http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106752.html • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •
CVSS: 8.1EPSS: 1%CPEs: 12EXPL: 0CVE-2013-2066 – libXv: Array Index error leading to heap-based OOB write
https://notcve.org/view.php?id=CVE-2013-2066
23 May 2013 — Buffer overflow in X.org libXv 1.0.7 and earlier allows X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the XvQueryPortAttributes function. Un desbordamiento de búfer en libXv X.org v1.0.7 y anteriores permite causar una denegación de servicio a los servidores X (por caída de los mismos) y posiblemente ejecutar código de su elección a través de valores de longitud o de índice de la función XvQueryPortAttributes debidamente modificados.... • http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106889.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 8.1EPSS: 0%CPEs: 9EXPL: 0CVE-2013-1982 – libXext: Multiple integer overflows leading to heap-based buffer-overflows
https://notcve.org/view.php?id=CVE-2013-1982
23 May 2013 — Multiple integer overflows in X.org libXext 1.3.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XcupGetReservedColormapEntries, (2) XcupStoreColors, (3) XdbeGetVisualInfo, (4) XeviGetVisualInfo, (5) XShapeGetRectangles, and (6) XSyncListSystemCounters functions. Múltiples desbordamientos de enteros en X.org libXext v1.3.1 y anteriores permiten a los servidores X para activar la asignación de memoria insuficiente y un desbordamie... • http://lists.opensuse.org/opensuse-updates/2013-06/msg00139.html • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •